In a nutshell, a backdoor was intentionally planted by a malicious actor in xz Utils, an open-source data compression utility widely used in Linux and other Unix-like operating systems. This discovery was made by Andres Freund, a developer and engineer working on Microsoft’s PostgreSQL offerings. He was troubleshooting performance problems on a Debian system. Specifically, SSH logins were consuming excessive CPU cycles and generating errors with Valgrind, a memory debugging tool. Through sheer luck and Freund’s careful eye, he eventually discovered that these issues were the result of updates made to xz Utils. Upon closer inspection, he found that updates to xz Utils were the result of a maliciously inserted backdoor. The backdoor, present in xz Utils versions 5.6.0 and 5.6.1, manipulated the sshd executable, allowing anyone with a predetermined encryption key to upload and execute arbitrary code on affected devices.
Kinda surprised there isn’t, ngl
The unsealed court order wasn’t just fishing for a list of vague identifiers that could be winnowed down to a list of suspects and a follow-up warrant demanding actual identifying information on these ~30,000 YouTube users. No, it appears the feds led with the big ask, demanding names, addresses, phone numbers, and user activity for every viewer of these videos between January 1-8, 2023. AND(!!) it asked Google to provide IP addresses for all viewers who were not logged into (or did not possess) Google accounts.
That’s fucked
deleted by creator
Dragon Bump by Desert Planet. It’s been a serious earworm the last couple of weeks for me lol
Tongue scraper is fantastic. Got a cheap metal one online for less than $5, works great and is easy to clean.
Well TIL, guess I’m one of today’s lucky 10,000
Perhaps I’m ignorant, but obesity is largely a personal problem, no? The core issue is consuming more calories than the body is expensing, so how is that anyone else’s’ problem?
can’t wait
I’m aware, patiently waiting for Jellyfin lol. I didn’t enjoy emby at all so Plex was the best “out of the box” solution for my use case
I prefer Plex for its stupid simple “press here to share your library with your family remotely.” And before the Jellyfin folks have an aneurysm, yes I know I can “jUsT uSe a ReVeRsE pRoXy” but I’m a busy guy and frankly lazy. So if Jellyfin wants wide adoption, it needs to make library sharing stupid simple.
Immortality. If you go to the bottom of the ocean or space without protection your muscles won’t get any more oxygen and you’ll get rigor mortis and basically be stuck forever.
Or better yet, that 1% can run in a VM
The Boss from Saints Row IV. Intro was stupid fun, rest of the game was…ehhh
Let’s see the wireframe lol, if it requires a ton of retopology I don’t see this being too significant of a time saver. Really cool tech tho
Found you, Rich Evans
I managed to bork my first Linux mint install by not paying attention to my permissions I was setting for a usb drive and basically locked myself out of the system and prevented it from booting into the desktop environment. Lesson learned, don’t copy/paste commands from StackOverflow and run them without thinking about what you’re trying to do
No prob! I think Ars Technica had the best writeup imo: https://arstechnica.com/security/2024/04/what-we-know-about-the-xz-utils-backdoor-that-almost-infected-the-world/